Contact
Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Home
Banner Desktop
    Supply Chain Attack: How Notepad++ Was Compromised via CVE-2025-15556
    Manuel Roccon | Cybercrime | 04/02/2026

    In cybersecurity, we often focus on finding complex bugs in source code, ignoring the fact that end-user trust is built on a much simpler foundation: a download link. The Notepad++ incident, now class...

    Microsoft Office under attack: the bug needs to be patched to prevent Russian espionage.
    Bajram Zeqiri | Cyber News | 03/02/2026

    In recent days, APT28 , a well-known Russian-linked hacker group, has intensified its attacks by exploiting a vulnerability in Microsoft Office. The flaw, classified as CVE-2026-21509, was disclosed b...

    Goodbye to NTLM! Microsoft is moving towards a new era of authentication with Kerberos
    Silvia Felici | Cyber News | 01/02/2026

    For over three decades, it has been a silent pillar of the Windows ecosystem. Now, however, NTLM ‘s time seems definitively over. Microsoft has decided to initiate a profound transition that marks the...

    The world’s first humanoid robot store has opened in China. Will we be ready?
    Carolina Vivianti | innovation | 30/01/2026

    At ten o’clock in the morning, in Wuhan, two 1.3-meter-tall humanoid robots begin moving with precision. They turn, jump, and follow a rhythm. It’s the opening signal for the country’s first 7S humano...

    Douglas Engelbart was born today: the man who saw and invented the digital future.
    Massimiliano Brolli | Culture | 30/01/2026

    Sometimes, when you think about it, you wonder how we take the world around us for granted. Like, we click, scroll, type, and it all seems so natural, as if it’s always been there. But no, there was s...

    WhatsApp gets a makeover: “Paranoia” mode arrives (and no, it’s not for everyone).
    Silvia Felici | Cyber News | 29/01/2026

    WhatsApp has decided to toughen up. Not for everyone, not always, but when needed. The decision comes against a backdrop of a now-familiar climate: increasing cyber attacks, espionage that no longer m...

    Beware of “I am not a robot”: the malware trap that uses Google Calendar.
    Bajram Zeqiri | Cybercrime | 29/01/2026

    A new threat is lurking, exploiting our greatest weakness: habit. How many times, in fact, do you find yourself clicking on verification boxes without thinking twice? Now, it seems that malicious peop...

    A blow to the heart of cybercrime: RAMP taken offline. The “temple” of ransomware falls!
    Bajram Zeqiri | Cybercrime | 28/01/2026

    The RAMP (Russian Anonymous Marketplace) forum, one of the main hubs of the international cybercrime underground, has been officially shut down and seized by US law enforcement . The news emerged afte...

    Digital Autonomy: France Says Goodbye to Teams and Zoom by 2027
    Silvia Felici | Cyberpolitics | 28/01/2026

    This isn’t the first initiative to emerge on this front recently. Indeed, we’ve heard several of them, one after the other. And it’s almost inevitable: technological autonomy and national security are...

    And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
    Pietro Melillo | Cyber News | 27/01/2026

    Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing a dangerous zero-day vulnerability that has already been explo...

    Precedente Successivo

    Latest news

    Going 50 Years Without Charging Your Phone: Here’s the Chinese Battery That Will Change Everything Cyber News

    Going 50 Years Without Charging Your Phone: Here’s the Chinese Battery That Will Change Everything

    Beijing-based Betavolt claims to have developed a nuclear battery that represents the world's first achievement in the miniaturization of atomic...
    Silvia Felici - October 31, 2025
    Mossad, the rigged supply chain, and intimidated judges Cybercrime

    Mossad, the rigged supply chain, and intimidated judges

    Yossi Cohen, former director of the Mossad, has said publicly two things that usually remain locked away in a room...
    Sandro Sana - October 31, 2025
    Nvidia invests $1 billion in Nokia to develop 6G networks with AI Cyber News

    Nvidia invests $1 billion in Nokia to develop 6G networks with AI

    Jen-Hsun Huang dropped a bombshell: Nvidia has reportedly invested $1 billion in Nokia. Yes, Nokia is the company that made...
    Silvia Felici - October 31, 2025
    Linux and gaming: an increasingly reliable combination Cyber News

    Linux and gaming: an increasingly reliable combination

    According to Boiling Steam , the number of Windows games running reliably on Linux is the highest ever recorded. The...
    Redazione RHC - October 31, 2025
    Russian Interior Ministry officials arrested the creators of the Medusa malware Cyber News

    Russian Interior Ministry officials arrested the creators of the Medusa malware

    The Russian programming team behind the Medusa malware has been arrested by officials from the Russian Interior Ministry, with the...
    Sandro Sana - October 31, 2025
    Atroposia: The MaaS platform that provides a Trojan with a vulnerability scanner Cyber News

    Atroposia: The MaaS platform that provides a Trojan with a vulnerability scanner

    Varonis researchers have discovered the Atroposia MaaS (malware-as-a-service) platform. For $200 a month, its customers receive a remote access Trojan...
    Massimiliano Brolli - October 30, 2025
    « Previous   Next »

    It’s Not Your PC’s Weak Link, It’s Your Mind: Exercises to Defend Yourself from Hackers

    Welcome to our second installment! Last week, we explored the battlefield of the human mind, understanding how the coevolution of hackers and defenders is a game of psychological chess, and...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Google pushes AI as the default search, risking blackouts for independent publishers and blogs.

    Google wants to make it easier for users to access AI Mode by allowing them to set it as their default search (instead of traditional links). AI Mode is a...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Apache Jackrabbit RCE Vulnerability: Exploitation in Progress, Update Now

    A dangerous vulnerability has been discovered in Apache Jackrabbit that could lead to remote execution of arbitrary code and compromise enterprise systems. The issue is registered as CVE-2025-58782 and affects...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Italian call center companies leave all audio recordings online

    Italian companies that use online telephony platforms (VoIP) based on open-source software such as Asterisk and Vicidial rely on these systems to contact Italian citizens on a daily basis, offering...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Tasting the Exploit: HackerHood testa l’exploit di WINRAR CVE-2025-8088

    Manuel Roccon, leader of Red Hot Cyber's HackerHood ethics team, has created a detailed video demonstration on YouTube that demonstrates in a practical way how the exploit based on the...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    NightshadeC2, the new botnet that uses unconventional methods to bypass protection

    eSentire has reported the discovery of a new botnet called NightshadeC2, which uses unconventional methods to bypass protection and sandboxes. The malware is distributed via counterfeit versions of legitimate programs...

    - September 9th, 2025

    Share on Facebook Share on LinkedIn Share on X

    WhatsApp and Apple in emergency: DNG bug allows remote control without clicking

    On August 20, Apple released an unscheduled security update for all major operating systems: iOS, iPadOS, macOS, and other platforms. The patch addresses the CVE-2025-43300 vulnerability in the ImageIO module:...

    - September 8th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Stealerium and Phantom: How Open-Source Infostealers Are Taking the World by storm

    Researchers at Proofpoint, a leader in cybersecurity and information protection, have detected a worrying increase in the use of open-source malware, such as Stealerium and Phantom Stealer, by opportunistic cybercriminals....

    - September 8th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Apple launches Security Research Device 2026 program for security researchers

    Apple has announced that it will accept applications for the Security Research Device Program (SRDP) 2026. Bug hunters interested in receiving an iPhone configured specifically for security research have until...

    - September 8th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Salesloft Drift Incident Expands: Tenable Confirms Customer Data Breach

    Tenable also suffered a compromise of contact information and support case details for some customers. The company said the incident was related to a large-scale data theft operation, which aimed...

    - September 8th, 2025

    Share on Facebook Share on LinkedIn Share on X

    Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE